mainscnt/sinkserver
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

debug ci stuff
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details

Browse Source
This commit is contained in:
Wolfgang Hottgenroth
2023-11-17 11:40:07 +01:00
parent cacb1c0254
commit 9fba8fd2e2
3 changed files with 7 additions and 96 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.woodpecker.yml Normal file
View File

@ -0,0 +1,6 @@
steps:
build:
image: docker:stable
commands:
- env
- echo 'docker build --build-arg="VERSION=$CI_COMMIT_SHA" -t '

93
deployment/deploy.yml
View File

@ -1,25 +1,3 @@
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
namespace: mainscnt
name: deny-all-but-dns
spec:
podSelector:
matchLabels: {}
policyTypes:
- Egress
- Ingress
egress:
- to:
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: kube-system
ports:
- protocol: UDP
port: 53
- protocol: TCP
port: 53
---
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
metadata: metadata:
@ -28,7 +6,7 @@ metadata:
labels: labels:
app: sinkserver app: sinkserver
spec: spec:
replicas: 3 replicas: 1
selector: selector:
matchLabels: matchLabels:
app: sinkserver app: sinkserver
@ -70,72 +48,3 @@ spec:
- protocol: UDP - protocol: UDP
port: 20169 port: 20169
targetPort: 20169 targetPort: 20169
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-database-sinkserver
namespace: database
spec:
podSelector:
matchLabels:
app: timescaledb
policyTypes:
- Ingress
ingress:
- from:
- podSelector:
matchLabels:
app: sinkserver
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: mainscnt
ports:
- protocol: TCP
port: 5432
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-sinkserver-database
namespace: mainscnt
spec:
podSelector:
matchLabels:
app: sinkserver
policyTypes:
- Egress
egress:
- to:
- podSelector:
matchLabels:
app: timescaledb
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: database
ports:
- protocol: TCP
port: 5432
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-sinkserver-ingress
namespace: mainscnt
spec:
podSelector:
matchLabels:
app: sinkserver
policyTypes:
- Ingress
ingress:
- from:
- ipBlock:
cidr: 0.0.0.0/0
ports:
- protocol: UDP
port: 20169

4
deployment/namespace.yml
View File

@ -1,4 +0,0 @@
apiVersion: v1
kind: Namespace
metadata:
name: mainscnt